Home > mailing lists

Re: Cutting support for OpenSSL 1.0.1 and 1.0.2 in 17~? - Mailing list pgsql-hackers

From	Daniel Gustafsson
Subject	Re: Cutting support for OpenSSL 1.0.1 and 1.0.2 in 17~?
Date	September 10 14:11:25
Msg-id	1A2530CF-9CC0-450C-8039-94E9E25D61DB@yesql.se Whole thread Raw
In response to	Re: Cutting support for OpenSSL 1.0.1 and 1.0.2 in 17~? (Peter Eisentraut <peter@eisentraut.org>)
List	pgsql-hackers

Tree view

> On 10 Sep 2024, at 10:01, Peter Eisentraut <peter@eisentraut.org> wrote:

>> And pushed.  All BF owners with animals using 1.0.2 have been notified but not
>> all have been updated (or modified to skip SSL) so there will be some failing.
>
> A small follow-up for this:  With the current minimum OpenSSL version being 1.1.0, we can remove an unconstify()
call;see attached patch. 

Nice catch.

> See this OpenSSL commit: <https://github.com/openssl/openssl/commit/8ab31975ba>.  The analogous LibreSSL change is
here:<https://cvsweb.openbsd.org/src/lib/libcrypto/bio/bss_mem.c?rev=1.17&content-type=text/x-cvsweb-markup>.   

> I don't know if we have a concrete minimum LibreSSL version, but the change is about as old as the OpenSSL change.

We've never documented the minimum LibreSSL version we support, but given that
we regularly test LibreSSL and fix breakage in our support I think we should.

--
Daniel Gustafsson

pgsql-hackers by date:

From: "Zhijie Hou (Fujitsu)"
Date: 10 September, 14:10:33
Subject: RE: Conflict detection for update_deleted in logical replication

From: Peter Smith
Date: 10 September, 14:19:37
Subject: Re: Pgoutput not capturing the generated columns

Re: Cutting support for OpenSSL 1.0.1 and 1.0.2 in 17~? - Mailing list pgsql-hackers

Previous

Next